Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2019-11-12 08:54:42 |
Facebook ordered to remove fake cryptocurrency adverts featuring celebrity (lien direct) |
A Dutch court has demanded that Facebook ups its game when it comes to ad fraud. |
|
|
|
|
2019-11-11 09:52:06 |
New Buran ransomware-as-a-service tempts criminals with discount licenses (lien direct) |
A new RaaS offering is attempting to undercut competitors to become established in the lucrative criminal space. |
|
|
|
|
2019-11-11 05:30:07 |
BlueKeep exploit to get a fix for its BSOD problem (lien direct) |
Microsoft's Meltdown patch was causing BlueKeep attacks to crash on some systems. |
|
|
|
|
2019-11-10 15:55:10 |
Major ASP.NET hosting provider infected by ransomware (lien direct) |
SmarterASP.NET, a company with more than 440,000 customers, said it's been hit by ransomware over the weekend. |
Ransomware
|
|
|
|
2019-11-08 21:37:00 |
Apple Mail on macOS leaves parts of encrypted emails in plaintext (lien direct) |
Apple has known since July, but a fix is still not available. |
|
|
|
|
2019-11-08 18:29:00 |
Phones and PCs sold in Russia will have to come pre-installed with Russian apps (lien direct) |
Russian lawmakers say the bill will protect Russian software companies from abuses by foreign tech firms. |
|
|
|
|
2019-11-08 15:56:24 |
Platinum APT\'s new Titanium backdoor mimics popular PC software to stay hidden (lien direct) |
The group uses encryption, fileless technologies, and mimicry to stay under the radar. |
|
|
|
|
2019-11-08 13:25:47 |
ConnectWise warns of ongoing ransomware attacks targeting its customers (lien direct) |
Hackers are trying to break into on-premise ConnectWise Automate systems and install ransomware on customer networks. |
Ransomware
|
|
|
|
2019-11-08 12:59:39 |
Nvidia patches severe GeForce, GPU vulnerabilities (lien direct) |
The worst bugs paved the way for code execution and information leaks. |
|
|
|
|
2019-11-08 11:28:09 |
Aventura charged for flogging Chinese spy equipment to US gov\'t with security vulnerabilities (lien direct) |
The company also falsely claimed the equipment was made in the United States. |
|
|
|
|
2019-11-08 03:39:21 |
Microsoft warns users to stay alert for more BlueKeep attacks (lien direct) |
Microsoft: BlueKeep exploit will likely be used to deliver payloads more impactful and damaging than coin miners. |
|
|
|
|
2019-11-08 00:09:38 |
DNS-over-HTTPS will eventually roll out in all major browsers, despite ISP opposition (lien direct) |
DoH support is already present in all major browsers. Users just have to enable it and configure it. |
|
|
|
|
2019-11-07 18:04:27 |
Microsoft\'s Rust experiments are going well, but some features are missing (lien direct) |
Microsoft rewrote a low-level Windows component in Rust. Calls the experience "generally positive." |
|
|
|
|
2019-11-07 13:52:19 |
Law enforcement can plunder DNA profile database, judge rules (lien direct) |
DNA data is available even if users opt-out in a landmark ruling that could have serious privacy implications. |
|
|
|
|
2019-11-07 13:30:36 |
UK government funds 18 projects to develop anti-drone technologies (lien direct) |
Government has listened to ideas, is now funding the development of proof-of-concepts and prototypes. |
|
|
|
|
2019-11-07 11:58:51 |
Law debated allowing confiscation of Bitcoin by the police (lien direct) |
Virtual assets, including cryptocurrency, are now on law enforcement's radar. |
|
|
|
|
2019-11-07 02:19:00 |
Mysterious hacker dumps database of infamous IronMarch neo-nazi forum (lien direct) |
Now-defunct IronMarch forum spawned two of today's most extremist far-right neo-nazi groups -- the Atomwaffen Division and SIEGE Culture. |
|
|
|
|
2019-11-06 22:53:42 |
Between 200,000 and 240,000 Magento online stores will reach EOL next year (lien direct) |
Many online stores will need to upgrade their backends in the coming nine months if they want to avoid getting hacked. |
|
|
|
|
2019-11-06 17:49:29 |
Google asks three mobile security firms to help scan Play Store apps (lien direct) |
Google, ESET, Lookout, and Zimperium join to create App Defense Alliance. |
|
|
|
|
2019-11-06 16:21:00 |
Facebook Portal survives Pwn2Own hacking contest, Amazon Echo got hacked (lien direct) |
Amazon Echo, Samsung and Sony smart TVs fall on first day of Pwn2Own Tokyo 2019 hacking contest. |
|
|
|
|
2019-11-06 14:00:09 |
This is how Google Analytics is abused by phishing scammers (lien direct) |
Analytics markers can help fraudsters track victims and dupe them into visiting malicious domains - but can also light the way for defenders. |
|
|
|
|
2019-11-06 14:00:08 |
This is the impact of a data breach on enterprise share prices (lien direct) |
Wall Street does not take cybersecurity incidents kindly, it seems. |
Data Breach
|
|
|
|
2019-11-06 14:00:00 |
Emotet resurgence packs in new binaries, Trickbot functions (lien direct) |
One of the most dangerous modular malware variants is back with new delivery functions. |
Malware
|
|
|
|
2019-11-06 12:02:15 |
Trend Micro reveals rogue employee sold data of up to 120,000 customers (lien direct) |
The cybersecurity firm says the attack came from within, leading to targeted scams. |
Guideline
|
|
|
|
2019-11-06 11:27:59 |
Chinese police arrest operators of 200,000-strong DDoS botnet (lien direct) |
One of China's largest crackdown against botnet operators. |
|
|
|
|
2019-11-06 10:39:34 |
Facebook reveals another privacy breach, this time involving developers (lien direct) |
Roughly 100 app developers may have been able to access data they shouldn't have. |
|
|
|
|
2019-11-06 00:53:28 |
Libarchive vulnerability can lead to code execution on Linux, FreeBSD, NetBSD (lien direct) |
Bug discovered by Google. Impacts Linux and BSD distros, but not Windows and macOS. |
Vulnerability
|
|
|
|
2019-11-05 21:13:00 |
Kamerka OSINT tool shows your country\'s internet-connected critical infrastructure (lien direct) |
Kamerka lets you see what a hacker sees. It plots maps with SCADA equipment, webcams, and printers that have been left exposed on the internet inside any given country. |
Tool
|
|
|
|
2019-11-05 15:28:26 |
Experts: Don\'t reboot your computer after you\'ve been infected with ransomware (lien direct) |
Rebooting may lead to restarting a crashed file-encryption process, potential loss of encryption keys stored in-memory. |
Ransomware
Guideline
|
|
|
|
2019-11-05 14:00:00 |
Google\'s OpenTitan: A new open source silicon root of trust project debuts (lien direct) |
Google wants to raise the bar for hardware security from the data center to the edge. |
|
|
|
|
2019-11-05 12:08:00 |
Kaspersky identifies mysterious APT mentioned in 2017 Shadow Brokers leak (lien direct) |
The NSA had superior insight into foreign nation-state hacking operations than many cyber-security vendors. |
|
|
|
|
2019-11-05 11:44:02 |
Canadian Nunavut government systems crippled by ransomware (lien direct) |
The lockdown has impacted medical, legal, and social services. |
Ransomware
|
|
|
|
2019-11-04 17:53:28 |
Ransomware hits Spanish companies, sparking WannaCry panic (lien direct) |
Two victims reported so far: IT consultancy firm Everis and leading radio network Cadena SER. |
Ransomware
Guideline
|
Wannacry
|
|
|
2019-11-04 17:11:00 |
(Déjà vu) A look at WP-VCD, today\'s largest WordPress hacking operation (lien direct) |
Exclusive look into the WP-VCD gang operations! |
|
|
|
|
2019-11-04 13:56:00 |
GitLab considers ban on new hires in China and Russia due to espionage fears (lien direct) |
Companies are afraid that future GitLab support staff in China and Russia might steal their data, or be coerced by foreign intelligence services to pass on trade secrets. |
|
|
|
|
2019-11-04 13:35:16 |
CFTC orders operators of \'worthless\' cryptocurrency to pay $4.25 million fine (lien direct) |
Investment software was used to tamper with data and disadvantage investors. |
|
|
|
|
2019-11-04 12:33:00 |
An inside look at WP-VCD, today\'s largest WordPress hacking operation (lien direct) |
A Wordfence report shared exclusively with ZDNet shows how the gang and its malware operates, what they're after, and how to avoid becoming their next victim. |
Malware
|
|
|
|
2019-11-04 11:41:01 |
Proofpoint acquires insider threat intelligence firm ObserveIT in $225 million deal (lien direct) |
Proofpoint hopes to strengthen its enterprise security offerings through the buyout. |
Threat
|
|
|
|
2019-11-03 03:13:00 |
BlueKeep attacks are happening, but it\'s not a worm (lien direct) |
Hackers are using BlueKeep to break into Windows systems and install a cryptocurrency miner. |
|
|
|
|
2019-11-03 01:31:13 |
Firefox to hide notification popups by default starting next year (lien direct) |
In a move to fight spam and improve the health of the web, Mozilla will hide notification popups -- a feature nobody asked for. |
Spam
|
|
|
|
2019-11-02 08:00:04 |
Android bug lets hackers plant malware via NFC beaming (lien direct) |
All Android 8 (Oreo) or later devices are impacted. Google released a patch last month, in October 2019. |
Malware
|
|
|
|
2019-11-01 20:36:55 |
Russia\'s new \'disconnect from the internet\' law is actually about surveillance (lien direct) |
Russia's slowly building its own Great Firewall model, centralizing internet traffic through government servers. |
|
|
|
|
2019-11-01 15:48:10 |
Facebook, Mozilla, and Cloudflare announce new TLS Delegated Credentials standard (lien direct) |
New TLS protocol extension will shorten the window an attacker has to perform a man-in-the-middle attack. |
|
|
|
|
2019-11-01 08:27:00 |
Halloween scare: Google discloses Chrome zero-day exploited in the wild (lien direct) |
On Halloween, Google releases Chrome 78.0.3904.87 to patch a Chrome zero-day discovered by Kaspersky exploited in the wild. |
|
|
|
|
2019-11-01 01:16:26 |
Mozilla to stop supporting sideloaded extensions in Firefox (lien direct) |
Firefox users won't be able to sideload extensions starting March 2020, with Firefox 74. |
|
|
|
|
2019-10-31 23:40:03 |
Cyber-attack hits Utah wind and solar energy provider (lien direct) |
First-of-its kind attack to hit a renewable energy provider. Also first cyber-attack to disconnect a US power grid operator from its power generation station. |
|
|
|
|
2019-10-31 19:09:00 |
Thousands of QNAP NAS devices have been infected with the QSnatch malware (lien direct) |
Over 7,000 infections reported in Germany alone. The malware is still spreading. |
Malware
|
|
|
|
2019-10-31 16:46:14 |
Chinese hackers developed malware to steal SMS messages from telco\'s network (lien direct) |
MessageTap malware is meant to be installed on Short Message Service Center (SMSC) servers, on a telco's network. |
Malware
|
|
|
|
2019-10-31 15:38:23 |
WhatsApp launches fingerprint security lock support for Android devices (lien direct) |
What Apple's iOS has already received is now available for Android handsets. |
|
|
|
|
2019-10-31 13:02:07 |
GEDmatch highlights security concerns of DNA comparison websites (lien direct) |
DNA matching can produce interesting data on family trees, but may also expose us to serious risk. |
|
|
|